Ethernet Configuration (macOS)
Applicable to: macOS 10.13+ or supported newer versions.
Administrator can configure Ethernet Interface in variations. The following payloads are available for configuring Ethernet:
-
Global Ethernet
-
First active Ethernet
-
First Ethernet
-
Second active Ethernet
-
Second Ethernet
-
Third active Ethernet
-
Third Ethernet
The different payload for configuring Ethernet are default fallback Global, First, First active, Second, Second active, Third, and Third active Ethernet interface. Apple has an existing known issue with install of First, First active, Second, Second active, Third, and Third active Ethernet interface.
Ethernet configuration
Procedure
- Select Configurations.
- Click + Add.
- Type Ethernet in the search field, and then select Ethernet Configuration.
- Enter a name and describe the configuration.
- Choose the configuration setup from the drop-down list.
- Enter the Ethernet configuration settings.
- Click Next.
- Select the Enable this configuration option.
- Select one the following channel options to apply the configuration:
- Device channel (most common)
- User channel (Current registered user)
- Select one of the following distribution options:
All Devices
No Devices (default)
Custom
- Click Done.
Ethernet configuration settings
Use the settings in the following table to configure Ethernet. For more information about these settings, see Apple documentation.
Setting |
Description |
---|---|
Protocols |
|
Accepted EAP Types |
Select the EAP types that can be used for accessing this network:
|
Authentication |
Username: Specify the username required for network access. If you leave this blank, the device user will be prompted for it.
Password: (Optional) Enter the password for accessing this network. Otherwise, the device user will be prompted for any password required for accessing the network. Outer identity: (Optional) For TTLS, PEAP, and EAP-FAST, select to allow device users to hide their identity. The user's actual name appears only inside the encrypted tunnel. This option can increase security because an attacker cannot see the authenticating user's name in the clear. System Mode Credentials Source Identity: System mode is used for computer authentication. Authentication using system mode occurs before a user logs in to the computer. System mode is commonly configured to provide authentication with the computer's X.509 certificate (EAP-TLS) issued by a local certificate authority. |
Trust |
Trusted Certificates: Select the checkboxes to select multiple certificates from the list. Trusted Server Certificate Names: Add the certificate name.
Maximum TLS version allowed with EAP authentication Minimum TLS version allowed with EAP authentication TLS Trusted Certificates: MobileIron Agent CA Certificate |
For more information, see How to create a configuration.